VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Mandrakesoft
>
Mandrake Linux
> 7.0
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2002-08-12
CVE-2002-0638
setpwnam.c in the util-linux package, as included in Red Hat Linux 7.3 and earlier, and other operating systems, does not properly lock a temporary file when modifying /etc/passwd, which may allow local users to gain privileges via a complex race condition that uses an open file descriptor in utility programs such as chfn and chsh.
local
high complexity
mandrakesoft
hp
redhat
6.2
6.2
2001-06-27
CVE-2001-0473
Format string vulnerability in Mutt before 1.2.5 allows a remote malicious IMAP server to execute arbitrary commands.
network
low complexity
immunix
mutt
conectiva
mandrakesoft
redhat
7.5
7.5
2001-06-27
CVE-2001-0441
Buffer Overflow vulnerability in SLRN Long Header
Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.
network
low complexity
debian
mandrakesoft
redhat
7.5
7.5
2001-06-27
CVE-2001-0388
time server daemon timed allows remote attackers to cause a denial of service via malformed packets.
network
low complexity
freebsd
mandrakesoft
suse
critical
10.0
10
2001-03-26
CVE-2001-0178
kdesu program in KDE2 (KDE before 2.2.0-6) does not properly verify the owner of a UNIX socket that is used to send a password, which allows local users to steal passwords and gain privileges.
local
low complexity
conectiva
caldera
mandrakesoft
suse
2.1
2.1
2001-03-26
CVE-2001-0169
When using the LD_PRELOAD environmental variable in SUID or SGID applications, glibc does not verify that preloaded libraries in /etc/ld.so.cache are also SUID/SGID, which could allow a local user to overwrite arbitrary files by loading a library from /lib or /usr/lib.
local
low complexity
mandrakesoft
redhat
trustix
turbolinux
2.1
2.1
2001-03-12
CVE-2001-0142
squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations.
local
high complexity
immunix
national-science-foundation
mandrakesoft
redhat
trustix
1.2
1.2
2001-03-12
CVE-2001-0140
arpwatch 2.1a4 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
local
high complexity
immunix
mandrakesoft
redhat
1.2
1.2
2001-03-12
CVE-2001-0139
inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
local
high complexity
caldera
immunix
debian
mandrakesoft
redhat
1.2
1.2
2001-03-12
CVE-2001-0138
privatepw program in wu-ftpd before 2.6.1-6 allows local users to overwrite arbitrary files via a symlink attack.
local
high complexity
immunix
debian
mandrakesoft
redhat
1.2
1.2
«
1
(current)
2
3
4
»
Next